Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5181

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5181
Last Modified 28 Dec 2012 12:00:00
Published 21 Dec 2012 04:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5181

Summary

Cross-site scripting (XSS) vulnerability in concrete5 Japanese 5.5.1 through 5.5.2.1 and concrete5 English 5.5.0 through 5.6.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Concrete5 5.5.0

  • Concrete5 5.5.1

  • Concrete5 5.5.2

  • Concrete5 5.5.2.1

  • Concrete5 5.6.0

  • Concrete5 5.6.0.1

  • Concrete5 5.6.0.2


References

JVNDB - JVNDB-2012-000113

JVN - JVN#65458431

CONFIRM - http://concrete5-japan.org/news/concrete5602ja-release/


Last Updated: 27 May 2016 11:01:29